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FINAL ACTION 

1 . Amendment D, received on 21 December 2009, has been entered into record. In 
this amendment, claims 1, 8-10, 13-15, 22, 23, 30, 31, and 38 have been amended. 

2. Claims 1-4, 6-10, 13-18, 20-26, 28-34, and 36-38 are presented for examination. 



Response to Arguments 

3. Applicant's arguments with respect to claims 1 -4, 6-1 0, 1 3-1 8, 20-26, 28-34, and 
36-38 have been considered but are moot in view of the new ground(s) of rejection. 



Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 



5. Claims 1-4, 6-10, 13-18, 20-26, 28-34, and 36-38 are rejected under 35 U.S.C. 
103(a) as being unpatentable over Win etal. (US Patent 6,182,142 B1 and Win 
hereinafter) in view of Tewari et al. (US 2003/0097564 A1 and Tewari hereinafter). 

As to claims 1, 9, and 13, Win discloses a system and method for distributed access 
management of information resources, the system and method having: 
display means (i.e. browser) (100, Figure 1); 
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mediating means (i.e. runtime module) (Abstract, line 6); 
authentication-information transmitting means (i.e. access server) 
(106, Figure 1); 

the display means having (i) a display function for displaying 
electronic information provided through a network so that a user can 
browse the information (i.e. menu) (col. 6, lines 17-19), (ii) a specifying- 
information receiving function for receiving specifying information (i.e. 
select resource) for specifying the mediating means (col. 6, lines 17-23), and 
(iii) a specifying function for specifying the mediating means using the 
received specifying information (col. 6, lines 22-23); 

the mediating means (i.e. runtime module) being operable to start the 
authentication-information transmitting means when specified by the 
specifying function (i.e. request) (Abstract, lines 6-8); 

the authentication-information transmitting means being operable to 
transmit device-authentication information (i.e. name and password) to an 
authentication server (i.e. registry server) (col. 9, lines 65-67); 

authentication being performed by an authentication server (col. 12, 
lines 24-29, 33-36). 
Win discloses: 

a plug-in to be started at the terminal device (col. 7, lines 42-50), but 
does not explicitly disclose where the plug-in is specified by an EMBED tag. 
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It is well known in the art that an EMBED tag is used in an HTML page to incorporate a 
plug-in, as evidenced by HTML Code Tutorial (page 1). Therefore, since Win discloses 
that services are structured as plug-ins, these plug-ins use the EMBED tag. 

Win fails to specifically disclose: 

a network location of the authentication server being received by the 
display means as part of an EMBED tag which specifies a plug-in to be 
started at the terminal device and which specifies the address of a site to 
be accessed when device authentication is successfully done and the 
address of a site to be accessed when authentication cannot be done. 

Nonetheless, this feature is well known in the art and would have been an obvious 

modification of the teachings disclosed by Win, as taught by Tewari. 

Tewari discloses a system and method for delivering secure content, the system and 

method having: 

a network location of the authentication server being received by the 
display means as part of a tag which specifies a plug-in to be started at the 
terminal device and which specifies the address of a site to be accessed 
when device authentication is successfully done and the address of a site 
to be accessed when authentication cannot be done (0623, lines 1-5; 0624, 
lines 1-4; 0626, lines 1-4, 8-10; 0627, lines 1-4; 0672-0674). 
Given the teaching of Tewari, a person having ordinary skill in the art at the time of the 
invention would have readily recognized the desirability and advantages of modifying 
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the teachings of Win with the teachings of Tewari by receiving the address of a server 
and destination sites as part of a tag. Tewari recites motivation by disclosing that 
including authentication and destination information in a URL provides a secure content 
delivery system that allows network traffic to be efficiently distributed (001 1, lines 1-3). 
It is obvious that the teachings of Tewari would have improved the teachings of Win by 
receiving addresses as part of a tag in order to efficiently distribute network traffic and 
load balance requests among servers. 

As to claim 2, Win discloses: 

authentication-result receiving means for receiving an authentication 
result from the authentication server (i.e. registry server) (col. 9, line 67; col. 
10, lines 1-2); 

authentication-result transmitting means for transmitting the 
received authentication result (i.e. tokens) to a providing server (i.e. 
resources on protected server) operable to provide electronic information 
(col. 2, lines 39-40); 

electronic-information receiving means for receiving the electronic 
information transmitted (i.e. granting access) from the providing server (i.e. 
resources) based on the transmitted authentication result (col. 3, lines 36- 
37). 

As to claim 3, Win discloses: 
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where the mediating means (i.e. runtime module) has a using function 
for using the electronic information (i.e. cookies) received from the 
providing server (i.e. protected server) (col. 7, lines 1-3, 62-63). 
As to claim 4, Win discloses: 

requesting means for sending a request (i.e. login request) for 
electronic information to the providing server (i.e. protected server) (Abstract, 
lines 6-7; col. 3, lines 33-34); 

where the specifying-information receiving function receives the 
specifying information (i.e. selected resource) transmitted from the 
providing server (i.e. resource on protected server) based on the request for 
electronic information (col. 6, lines 17-23). 
As to claim 6, Win discloses: 

where the device-authentication information is transmitted to a 
plurality of authentication servers (i.e. registry server), network locations of 
the respective authentication servers are received by the display means, 
and the network locations are ranked in an access precedence order (i.e. 
access 2 nd if 1 st is busy) (col. 4, lines 65-67; col. 5, line 1; col. 7, lines 58-60). 
As to claim 7, Win discloses: 

the specifying-information receiving function receives the specifying 
information including access information (i.e. name and password) used to 
access the providing server (col. 9, lines 63-65); 
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the authentication-result transmitting means accesses the providing 
server using the received access information (col. 9, lines 65-67). 



As to claims 8, 10, and 14, Win discloses: 

transmitting specifying information for specifying the mediating 
means from the specifying-information transmitting means to the display 
means of the terminal (col. 6, lines 17-23), the mediating means using the 
specifying information to start the authentication-information transmitting 
means (Abstract, lines 6-7); 

receiving in the authentication-result receiving means an 
authentication result (i.e. cookie) sent from the terminal device (i.e. browser) 
(col. 11, lines 9, 12-13); 

transmitting electronic information from the electronic-information 
transmitting means to the terminal device based on the received 
authentication result (col. 2, lines 38-40); 

authentication being performed by an authentication server (col. 12, 
lines 24-29, 33-36). 
Win discloses: 

a plug-in to be started at the terminal device (col. 7, lines 42-50), but 
does not explicitly disclose where the plug-in is specified by an EMBED tag. 
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It is well known in the art that an EMBED tag is used in an HTML page to incorporate a 
plug-in, as evidenced by HTML Code Tutorial (page 1). Therefore, since Win discloses 
that services are structured as plug-ins, these plug-ins use the EMBED tag. 

Win fails to specifically disclose: 

authentication being performed by an authentication server, and a 
network location of the authentication server being received by the display 
means as part of an EMBED tag which specifies a plug-in to be started at 
the terminal device and which specifies the address of a site to be 
accessed when device authentication is successfully done and the address 
of a site to be accessed by authentication cannot be done. 

Nonetheless, this feature is well known in the art and would have been an obvious 

modification of the teachings disclosed by Win, as taught by Tewari. 

Tewari discloses: 

authentication being performed by an authentication server (0622, 
lines 1-2), and a network location of the authentication server being 
received by the display means as part of an EMBED tag which specifies a 
plug-in to be started at the terminal device and which specifies the address 
of a site to be accessed when device authentication is successfully done 
and the address of a site to be accessed by authentication cannot be done 
(0623, lines 1-5; 0624, lines 1-4; 0626, lines 1-4, 8-10; 0627, lines 1-4; 0672- 
0674). 
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Given the teaching of Tewari, a person having ordinary skill in the art at the time of the 
invention would have readily recognized the desirability and advantages of modifying 
the teachings of Win with the teachings of Tewari by receiving an address of a server 
and destination sites as part of a tag. Please refer to the motivation recited above with 
respect to claims 1 , 9, and 13 as to why it is obvious to apply the teachings of Tewari to 
the teachings of Win. 

As to claims 15, 23, and 31 , Win discloses: 

information communication means (i.e. browser) (100, Figure 1); 
electronic-information using means (i.e. runtime module) (Abstract, line 

6); 

authentication-information management means (i.e. access server) 
(106, Figure 1); 

the information communication means having (i) a function for 
receiving authentication trigger information (i.e. select resource) required for 
using electronic information provided through a network (col. 6, lines 17- 
23), (ii) a function for analyzing (i.e. determine) specifying information for 
specifying the electronic-information using means based on the 
authentication-trigger information (i.e. request) (Abstract, lines 9-10), and (iii) 
a specifying function for specifying the electronic-information using means 
based on the specifying information (col. 6, lines 22-23); 
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the electronic-information means (i.e. runtime module) being operable 
to start the authentication-information management means when specified 
by the specifying function (i.e. request) (Abstract, lines 6-8); 

the authentication-information management means being operable to 
read device-authentication information (i.e. name and password), and to 
transmit the device-authentication information to an authentication server 
(i.e. registry server) (col. 9, lines 65-67). 
Win discloses: 

a plug-in to be started at the terminal device (col. 7, lines 42-50), but 
does not explicitly disclose where the plug-in is specified by an EMBED tag. 
It is well known in the art that an EMBED tag is used in an HTML page to incorporate a 
plug-in, as evidenced by HTML Code Tutorial (page 1). Therefore, since Win discloses 
that services are structured as plug-ins, these plug-ins use the EMBED tag. 

Win fails to specifically disclose: 

a network location of the authentication server being received by the 
information communication means as part of an EMBED tag which 
specifies a plug-in to be started at the terminal device and which specifies 
the address of a site to be accessed when device authentication is 
successfully done and the address of a site to be accessed when 
authentication cannot be done. 
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Nonetheless, this feature is well known in the art and would have been an obvious 
modification of the teachings disclosed by Win, as taught by Tewari. 
Tewari discloses: 

a network location of the authentication server being received by the 
information communication means as part of an EMBED tag which 
specifies a plug-in to be started at the terminal device and which specifies 
the address of a site to be accessed when device authentication is 
successfully done and the address of a site to be accessed when 
authentication cannot be done (0623, lines 1-5; 0624, lines 1-4; 0626, lines 1- 
4, 8-10; 0627, lines 1-4; 0672-0674). 
Given the teaching of Tewari, a person having ordinary skill in the art at the time of the 
invention would have readily recognized the desirability and advantages of modifying 
the teachings of Win with the teachings of Tewari by receiving an address of a server 
and destination sites as part of a tag. Please refer to the motivation recited above with 
respect to claims 1 , 9, and 13 as to why it is obvious to apply the teachings of Tewari to 
the teachings of Win. 



As to claims 16, 24, and 32, Win discloses: 

the authentication-information management means (i.e. access 
server) receives an authentication result from the authentication server (i.e. 
registry server) (col. 9, line 67; col. 10, lines 1-2); 
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the electronic-information using means transmits the authentication 
result (i.e. tokens) to a providing server operable to provide the electronic 
information (col. 2, lines 39-40); 

the information communication means receives the electronic 
information (i.e. granting access) transmitted from the providing server (i.e. 
resources) based on the transmitted authentication result (col. 3, lines 36- 
37). 

As to claims 17, 25, and 33, Win discloses: 

where the electronic-information using means has a using function 
for using the electronic information (i.e. cookies) received from the 
providing server (i.e. protected server) (col. 7, lines 1-3, 62-63). 

As to claims 18, 26, and 34, Win discloses: 

where the electronic-information using means is operable to enable 
(i.e. display) a user to browse the electronic information (col. 6, lines 17-19), 
to play back electronic information as music content, or to play back 
electronic information as moving-picture content (i.e. applet) (col. 5, lines 27- 
28). 

As to claims 20, 28, and 36, Win discloses: 

wherein the device-authentication information is transmitted to a 
plurality of authentication servers (i.e. registry server), network locations of 
the respective authentication servers are received by the information 
communication means, and the network locations are ranked in an access 
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precedence order (i.e. access 2 nd if 1 st is busy) (col. 4, lines 65-67; col. 5, line 1 ; 
col. 7, lines 58-60). 
As to claim 21 , 29, and 37, Win discloses: 

the authentication-trigger information includes providing-server 
access information (i.e. name and password) used to access the providing 
server (col. 9, lines 63-65), and the step of transmitting the authentication 
result from the authentication-information management means to the 
providing server using the providing-server access information (col. 9, lines 
65-67). 

As to claims 22, 30, and 38, Win discloses: 

authentication-trigger-information transmitting means for 
transmitting, to the terminal device (i.e. browser), authentication-trigger 
information (i.e. selected resource) including specifying information for 
specifying electronic-information using means (col. 6, lines 17-23); 

authentication-result receiving means for receiving an authentication 
result (i.e. cookie) from the terminal device (i.e. browser) (col. 1 1 , lines 9, 1 2- 
13); 

electronic-information providing means for providing electronic 
information (i.e. tokens) to the terminal device (i.e. client) based on the 
received authentication result (col. 2, lines 38-40); 
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authentication being performed by an authentication server (col. 12, 
lines 24-29, 33-36). 
Win discloses: 

a plug-in to be started at the terminal device (col. 7, lines 42-50), but 
does not explicitly disclose where the plug-in is specified by an EMBED tag. 
It is well known in the art that an EMBED tag is used in an HTML page to incorporate a 
plug-in, as evidenced by HTML Code Tutorial (page 1). Therefore, since Win discloses 
that services are structured as plug-ins, these plug-ins use the EMBED tag. 

Win fails to specifically disclose: 

authentication being performed by an authentication server, and a 
network location of the authentication server being received by the display 
means as part of an EMBED tag which specifies a plug-in to be started at 
the terminal device and which specifies the address of a site to be 
accessed when device authentication is successfully done and the address 
of a site to be accessed by authentication cannot be done. 

Nonetheless, this feature is well known in the art and would have been an obvious 

modification of the teachings disclosed by Win, as taught by Tewari. 

Tewari discloses: 

authentication being performed by an authentication server (0622, 
lines 1-2), and a network location of the authentication server being 
received by the display means as part of an EMBED tag which specifies a 



Application/Control Number: 10/519,853 Page 15 

Art Unit: 2431 

plug-in to be started at the terminal device and which specifies the address 
of a site to be accessed when device authentication is successfully done 
and the address of a site to be accessed by authentication cannot be done 

(0623, lines 1-5; 0624, lines 1-4; 0626, lines 1-4, 8-10; 0627, lines 1-4; 0672- 
0674). 

Given the teaching of Tewari, a person having ordinary skill in the art at the time of the 
invention would have readily recognized the desirability and advantages of modifying 
the teachings of Win with the teachings of Tewari by receiving an address of a server 
and destination sites as part of a tag. Please refer to the motivation recited above with 
respect to claims 1 , 9, and 1 3 as to why it is obvious to apply the teachings of Tewari to 
the teachings of Win. 



Conclusion 

6. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See M PEP 
§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
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extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Sarah Su whose telephone number is (571) 270-3835. 
The examiner can normally be reached on Monday through Friday 7:30AM-5:00PM 
EST.. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, William Korzuch can be reached on (571) 272-7589. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Sarah Su/ 

Examiner, Art Unit 2431 

/Christopher A. Revak/ 
Primary Examiner, Art Unit 2431 



